Skip to content

Commit

Permalink
[nixos/server/wakapi] migrate from docker to nixos service
Browse files Browse the repository at this point in the history
  • Loading branch information
@pSub
pSub committed Dec 6, 2024
1 parent 49c84c9 commit 9793e3b
Show file tree
Hide file tree
Showing 2 changed files with 26 additions and 3 deletions.
23 changes: 22 additions & 1 deletion nixos/server/configuration.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ in {
"nextcloud/db" = { owner = "nextcloud"; };
"homepage/db" = { owner = "homepage"; };
"paperless/admin" = { owner = "paperless"; };
"wakapi/passwordSalt" = { };
"radicale" = { owner = "radicale"; };
"restic/data" = {};
"vaultwarden/env" = { owner = "vaultwarden"; };
Expand Down Expand Up @@ -342,6 +343,7 @@ in {
htop
lynis
zile
pgloader
];

# What breaks with this option?
Expand Down Expand Up @@ -512,7 +514,7 @@ in {
services.postgresql.enable = true;
services.postgresql.package = pkgs.postgresql_15;
services.postgresql.dataDir = "/var/lib/postgresql/15";
services.postgresqlBackup.databases = [ "atuin" "homepage_production" "nextcloud" ];
services.postgresqlBackup.databases = [ "atuin" "homepage_production" "nextcloud" "wakapi" ];
services.postgresqlBackup.enable = true;
services.postgresqlBackup.location = "/var/backup/postgresql";
services.postgresqlBackup.startAt = "*-*-* 02:15:00";
Expand Down Expand Up @@ -593,6 +595,25 @@ in {
nextcloud-occ config:system:set memcache.locking --value '\OC\Memcache\Redis' --type string
'';

# wakapi
services.wakapi = {
enable = true;
passwordSaltFile = "/run/secrets/wakapi/passwordSalt";
database.createLocally = true;
settings = {
server = {
port = 3043;
};
db = {
host = "127.0.0.1";
port = 5432;
user = "wakapi";
name = "wakapi";
dialect = "postgres";
};
};
};

# paperless
services.paperless.enable = true;
services.paperless.dataDir = "/srv/paperless";
Expand Down
6 changes: 4 additions & 2 deletions nixos/server/secrets.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,8 @@ netdata:
telegram: ENC[AES256_GCM,data:bdK27PsQvSFutibTYvaOfVGxXHBJY/NnAzJww2tbJ7sOw+RwfvKcdRnAwRTH6BKSU5mBFG5JLiszNx9PA8oA5ttlO4xP9ks71TpnnfJY+V/P2o9WQhFYX2mFRa6bWZuT7vm+2WMca0Hh2Vdy7f9ei0YITZL7sz3tjhmdj3lya3+eB2s6fmuvW5kbkAW9UXSnzg==,iv:G9Oj+3wiJ/W8qU8L9GIIupIqVVhPjVBDtoySmR+K15U=,tag:2WWecAOoBdeb/MXzX9UQag==,type:str]
paperless:
admin: ENC[AES256_GCM,data:2Kkthtc4SBtnxR48AsWithh2jchgqA7PA0YfpbGACTCR2l1Yko7tXa+bu/rKGdOM9A/mYu+xxJdjLlwYj4stvl76FNrDBVsqlrGpYhj40hp4L+xyG+kgoUNQgOZMMJ8lHnE=,iv:RiWlRp/ZJv21glQkiUsF3Q/SxAOHZcOvE3K9TJY+G1I=,tag:PgvGLVT/sRjqH9SS6UV+tw==,type:str]
wakapi:
passwordSalt: ENC[AES256_GCM,data:Bp+XMAzL0iY2LElWaunvDcd+mOGQeYLthpKn0zaq0NE=,iv:gaDpczXhig0xrvB1Z9JR4QuXHFcwNkWrtrSsE6oHZO4=,tag:is4NBvgC4byJGkOzC5v6LA==,type:str]
basicauth:
passwords: ENC[AES256_GCM,data:JRSOEaZ8C4fumXkIp5SqlN76QRi5xHHKewUI+5Y/KljTrIJ3vc+S8G2pMhjH3r0VJt4d3yR/JjJoNQugKAZCeSUQ6QIePMw+mTNlevl6O0CEAS3SWlOyKdvREqN6wNJ4iEH7JC68aofVQjXD/ZbirX117UjWDQR8ZiasBCESmuVrYtexrNhN4sYs1tIbz4JfVPvyP+Vb3QfEa1r5tCIKhQfprOi9BT0eocEJ/+IJbv+dLkefXMo4PefN5ukYRSkE4QWINqSlgj6HcDxwR48KsHz8hYeSFSxN60M9BPUwjBJ4xF5QwcQvvSvk3Cu6vrBjj8yYbTxHhAnjtKtQvIFj1MBf2mUXssoaZks4j7G7FAzB8MndcGJEmjS8+RplmE7GFE4LaJF5NlaHQSuW/O0FqaTEfmKJMmIA3NgbvMUkQQV05+28ScNpqXBauAMct3Y9jdJnieg0w2Orrl2ynXvsapjYB614s2LKs9xJmM0mpnN07vnT2DRx4c9wtFI0cVU3XKbRwfHU0hZNgfN3AbI8ZD/VV2ce3zWFSCHqPfZ3RV2jx7EAmlpX,iv:lbsmIaH3jrjfADuYe+iaXDyqc60hwnSaVtnpmN2084I=,tag:S71d70KGcs8GOLtAZZ2dIA==,type:str]
radicale: ENC[AES256_GCM,data:S0jLt/zPFMuePul5oHSKq8EJu4TyVF1cml7Z0Bsi0417+ZxBlMCq7yRcBZpejA/uTkayXVP1/hLkP6a8FtxRAafa7g==,iv:dHWJgOlB9LWUTCzVBGIIzfdCmLnQKfHsjBgU9/5+w1o=,tag:2zYVIhWaqrCc4g87F9QzJg==,type:str]
Expand Down Expand Up @@ -48,8 +50,8 @@ sops:
aFc3QjhGZ2YzVUlyZ1NLYnRMaGhuWDgKRwlpwJLYmTo/X4NV10PvIdI24h3F34nT
f+nVp5/bu6/6qaa0hfcFCq4Pcxdz9OXPgYIxCufPYMc1CtXDu6OCsA==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2024-09-25T20:57:25Z"
mac: ENC[AES256_GCM,data:0xeLzdvldo08UVYrcP6AnpcgVleb7qIzviaOW1SBX/ctkUsLJZfEu4F1GhzeLGt3J6SMB9/hif/aFVYAYxe8TjfbsSn8j0qrpjwqyrb2Qj5S+UbWvfANC+p6877LJlr4ITm9tL2OExAHBe1VUBekIFMz+bhNc+3aUpyQdJ7lPGw=,iv:ZM6p67EFDILx5xfAhqAixQe3RTPggFrNa1zD2gHsRq0=,tag:LFP1RDiChUK2BdGFObNlNg==,type:str]
lastmodified: "2024-12-05T21:18:42Z"
mac: ENC[AES256_GCM,data:3RCUJ1xxDP9QfaCEW/Wph4TOdarOBVchqwCiQR3uMM6Qd1AFQsPhRI27CXcqvNfTDaG9rWb+XCNc+lMSa52+pN/5zqqJOHEaildxlKm1uqej8PC4KvDhOmB2Z4dGYN7Z6RnHr6sGdHKNqJkZNfcvac17THbFqbzg1dCq/nJ7H7A=,iv:dXVZPbe4okorOB/PAxtn9Gj5iMGpmi7NhSOKI2rcKjY=,tag:JG8FJDbbGUxFPq7lTs9mhw==,type:str]
pgp: []
unencrypted_suffix: _unencrypted
version: 3.8.1

0 comments on commit 9793e3b

Please sign in to comment.